Vulnerability Description
Integer overflow in the wordwrap function in string.c in PHP 4.4.2 and 5.1.2 might allow context-dependent attackers to execute arbitrary code via certain long arguments that cause a small buffer to be allocated, which triggers a heap-based buffer overflow in a memcpy function call, a different vulnerability than CVE-2002-1396.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Php | Php | 4.4.2 |
References
- ftp://patches.sgi.com/support/free/security/advisories/20060701-01-U
- http://docs.info.apple.com/article.html?artnum=304829
- http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html
- http://rhn.redhat.com/errata/RHSA-2006-0549.html
- http://secunia.com/advisories/19803
- http://secunia.com/advisories/20052
- http://secunia.com/advisories/20222
- http://secunia.com/advisories/20269
- http://secunia.com/advisories/20676
- http://secunia.com/advisories/21031
- http://secunia.com/advisories/21050
- http://secunia.com/advisories/21125
- http://secunia.com/advisories/21135
- http://secunia.com/advisories/21252
- http://secunia.com/advisories/21564
FAQ
What is CVE-2006-1990?
CVE-2006-1990 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Integer overflow in the wordwrap function in string.c in PHP 4.4.2 and 5.1.2 might allow context-dependent attackers to execute arbitrary code via certain long arguments that cause a small buffer to b...
How severe is CVE-2006-1990?
CVE-2006-1990 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-1990?
Check the references section above for vendor advisories and patch information. Affected products include: Php Php.